Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
File: QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft (raw, json)
Hash identifier: +qZDgq1V3w5RF3FwY7C0h8tBwl6M36TAMHYJUgcOhaw=
Subject key identifier: 9D:3A:07:44:68:10:CD:7E:09:1F:A7:6E:B5:71:11:53:A2:63:8C:46
Authority key identifier: 43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
Certificate issuer: /CN=431c57e1921d31a34aebd12e507a136fe04598c6
Certificate serial: 019EC2929729BE73CEA40A938B32ADEA30B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
Manifest number: 0718
Signing time: Sat 13 Jun 2026 20:00:47 +0000
Manifest this update: Sat 13 Jun 2026 20:00:47 +0000
Manifest next update: Sun 14 Jun 2026 20:00:47 +0000
Files and hashes: 1: QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl (hash: wVlaxPZJtu5lhgm3O+8VRM7VCvY2t3zS3u5vt9JtxVs=)
2: mIEKfqcwzKGnUqM9s4OdPs7YrbA.roa (hash: buVxIPz10EIVfwpYwh+P1ZYqWF3K+n7bUAR0sR0jGqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:97:29:be:73:ce:a4:0a:93:8b:32:ad:ea:30:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=431c57e1921d31a34aebd12e507a136fe04598c6
Validity
Not Before: Jun 13 20:00:47 2026 GMT
Not After : Jun 14 20:00:47 2026 GMT
Subject: CN=9d3a07446810cd7e091fa76eb5711153a2638c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:61:80:f4:40:ab:4d:6d:4c:c4:8a:48:c0:f1:
3f:1f:58:31:41:b3:d0:32:ec:5d:54:81:df:88:e3:
94:b7:7e:b2:3a:75:df:a9:0a:54:31:4e:97:e5:64:
8d:25:0b:e8:26:76:1b:04:84:6f:8d:de:41:ec:56:
e6:f9:41:78:44:12:ef:c2:76:89:77:34:2f:95:b5:
a2:ca:5b:58:be:0c:41:d3:31:27:0f:2a:e3:ff:d6:
57:d5:4e:fa:41:e9:70:33:e9:35:82:07:e3:67:e3:
4e:c4:03:3c:15:2c:f2:d7:80:35:61:c4:ae:e1:5b:
82:a0:5d:f0:9e:e1:b9:cd:0e:3e:6d:f2:20:ff:1a:
71:39:fe:28:e4:1f:e6:38:13:bd:3e:06:80:e4:90:
92:23:1f:1c:3b:79:84:11:8e:17:14:3b:d3:e3:a6:
83:45:3e:bf:37:da:2a:64:9b:2d:8a:19:23:4b:c7:
84:1d:a3:a5:ab:c3:0b:6e:ed:6a:9b:d7:3e:f9:43:
b3:3f:77:27:67:41:c1:c7:e3:25:d9:60:d6:47:22:
10:6a:dd:48:16:a9:65:65:f3:61:9d:37:e4:96:5b:
a9:78:66:f5:e3:5e:26:aa:52:ad:1f:86:e9:c6:75:
78:b7:94:d6:37:61:cd:42:a2:39:e6:b7:13:a3:b8:
4c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3A:07:44:68:10:CD:7E:09:1F:A7:6E:B5:71:11:53:A2:63:8C:46
X509v3 Authority Key Identifier:
keyid:43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:0a:e4:c8:10:65:67:fe:8b:d8:34:76:15:cf:36:98:68:40:
a7:bd:4f:7f:7e:5b:ee:8f:9e:b3:55:18:96:7c:38:3c:07:c8:
3b:16:c1:8f:2f:15:4d:1a:1b:2f:96:37:61:33:63:1c:a9:a5:
c2:d2:ad:2e:e6:c9:2f:75:56:88:fe:22:9b:78:04:01:f4:a2:
80:bb:fc:c9:3f:2c:13:b4:3c:0c:81:95:ec:67:82:5e:4c:a8:
a2:c5:5a:95:64:82:63:26:4e:e1:51:12:73:44:cf:7b:26:cc:
55:7c:a6:85:3b:34:66:5b:3a:b8:75:fd:22:6f:3b:8f:63:5a:
5b:40:c7:83:64:d5:ea:e3:9d:59:ca:7a:60:95:d8:d0:f1:3d:
f3:4c:bf:dd:29:3b:51:cb:b1:d1:15:5b:22:cd:e1:de:97:e3:
0c:57:2e:ec:18:2a:0d:e4:fc:a0:1a:a7:73:9a:55:0a:c8:91:
90:6e:a0:ff:ea:15:7b:5b:8f:0d:f1:ea:94:8c:46:4a:68:d5:
dc:dc:50:5f:88:49:43:98:cf:12:e2:42:65:8c:16:51:17:e6:
71:47:4d:9c:56:32:07:30:77:59:26:61:84:f9:c9:ee:06:5c:
33:1b:2b:7e:dc:49:7a:6d:52:93:67:8d:e2:3e:b4:2c:0b:11:
5c:f4:6a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:45:06 2026 by rpki-client